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TELECOMMUNICATION-ASSISTED TIME STAMP 

[0001] The present invention relates to a method for providing a time stamp by means of a 
tamper-proof time signal via a telecommunications network as well as an associated system 
for generating a tamper-proof time stamp in network-based communication systems, and to a 
method for transmitting data with a tamper-proof time stamp over a telecommunications 
network from a first network user to a second network user. 

[00021 The problem of a secure electronic time stamp occurs everywhere in applications 
where it is necessary to prove the time of creation of data or documents and/or the time of 
receipt of such electronic data. Especially due to the electronic distribution of mail, for 
example, in the form of e-mails, voice mails, faxes, etc., a secure time stamp becomes 
indispensable, especially since digital signatures require tamper-proof time information. 

[0003] In principle, it is conceivable that a time signal intended for electronic time-stamping 
of data may be derived, for example, from a legally and/or officially recognized time signal 
transmitter. In Germany, such a time signal is broadcast, for example, by the DCF-77 
longwave transmitter in Braunschweig. This time signal is, in fact, highly accurate, but not 
tamper-proof, resulting in the possibility of tampering with the transmitted time, which may 
lead to differences between the real time and the time specified in an electronic document. 
Therefore, misuse is possible in all cases where time stamps have to be paid attention to from 
an economic and legal point of view, 

[0004] A method for transmitting official time information is already known from DE 1 98 
45 198, where time information is fed into the networks of a mobile network operator. 
According to this known method, the time information is encrypted by the mobile network 
operator and then transmitted over the mobile network to a terminal device user, who decrypts 
the time information in the terminal device. In this process, secure transmission, in each case 
based on the network operator's technology, is provided only for the period of transmission 
from the mobile network operator to the terminal device user. However, tamper-proofness 
cannot be guaranteed for the periods until the time information is received by the mobile 
network operator, as a result of which misuse is possible here, especially because of the open 
switching centers in communications networks. 
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[0005] The object of the present invention is to provide a tamper-proof, telecommunication- 
based method and system for providing a time stamp, in which the level of security is 
considerably higher compared to the prior art. 

[0006] This objective is achieved in accordance with the present invention by a network user 
requesting a time signal from an, in particular, certified central system; this time signal 
preferably being an officially recognized time signal, such as that of the DCF-77 transmitter. 
The preferably certified central system encrypts this time signal with at least one key already 
before it is fed into a telecommunications network. It is only after this encryption that the time 
signal is fed into a telecommunications network and transmitted over this telecommunications 
network to the network user. This network user is then able to decrypt the encrypted data 
packet with the same key or keys and, thus, to receive a tamper-proof time signal. 

[0007] In comparison with the known prior art method, the method of the present invention 
already has the advantage of encrypting the officially recognized time signal already before it 
is fed into a communications network; the encryption being done by a preferably certified 
central system, which may be formed, for example, in a so-called 'trust center". This central 
system, with its increased safety requirements, provides a higher level of security than the 
method described in the prior art, since the switching centers, which are particularly 
vulnerable to tampering, can here no longer constitute any points of attack, because 
encryption has been shifted to an earlier stage. 

[0008] The actual encryption and decryption of the time signal, both at the central system 
and at the network user, can be carried out using encryption algorithms which require at least 
one key for encrypting the information and which are well-known to one skilled in the art. 
The type of encryption, for example, by means of digital signatures, hash functions, etc., is a 
matter of choice by the person skilled in the art. 

[0009] As described earlier, the encryption provided at the central system and the 
subsequent decryption of the time signal at the network user require both the central system 
and the network user to have the same key or keys. Since, here again, tampering is, in 
principle, possible, namely because the possibility of spying a key that is used for a longer 
period of time, one preferred refinement provides for at least one key, which is stored both at 
the central system and at the network user, to change synchronously at both storage sites, 
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especially after predetermined time intervals. Thus, this key is always present identically at 
both storage sites at the same points in time, but changes preferably at short time intervals of, 
for example, only a few seconds, so that the possibility of spying such a key is effectively 
reduced. Accordingly, the method is carried out using a key which is variable over time and 
which is present identically at the network user and at the central system. In principle, it is 
also possible for a plurality of such keys to be present and used in the above-mentioned 
method. 

[0010] The time-synchronous changing of this key at the network user and at the central 
system is preferably achieved by providing at least one clock system at both the network user 
and at the central system; the clock system at the network user being assigned to a clock 
system at the central system, and both clock systems, in turn, being assigned to one specific 
network user. These two clock systems operate synchronously in time and are provided in 
order for a key that changes over time to be generated at the network user and at the central 
system as previously described, so that this synchronously changing key can be used for the 
encryption and transmission of the time signal Optionally, it is also possible to use a plurality 
of clock systems in order to generate a plurality of keys. 

[0011] Here, provision can be made for the two clock systems to be formed by hardware, 
and to be issued by the, in particular, certified central system after a network user has 
requested registration. After the registration of a network user for the method of the present 
invention, the central system will synchronize two clock systems in time, keep one and make 
one available to the network user, for example, for purchase or as a loan. This provides 
absolute synchronism of the two clock systems, as well as the identity of the key at both 
storage sites at the same points in time. 

[0012] In accordance with the method of the present invention, different clock systems, 
which are respectively assigned to different network users, will need to be distinguished from 
each other. To this end, the present invention preferably provides that when a network user 
requests a time signal, a clock system which is assigned to this network user and present at the 
central system is determined by the central system using a transmitted identifier. This 
identifier may, for example, be one that uniquely identifies the network user within the 
communications network. The identifier in question may, for example, be the so-called "Call 
Line Identity" (CLI), in cable-based telephone networks, the so-called "Home Location 
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Register" (HLR) in mobile telecommunications networks, the so-called IP address in the 
Internet, or, in other systems, the identifier may include PIN and PAN numbers, which can 
also be used for unique identification. 

[0013] Uniqueness is essentially provided already because each assignment of identifiers is 
issued only after personal identification of the owner, for example, by an identity card. This is 
the case, for example, for the CLI when applying for a telephone connection, the HLR when 
subscribing to a mobile phone contract, and for the IP address in the Internet when registering 
with an internet provider, who, even in the case of dynamic address assignment, records at 
least the provider's internal identifier. 

[0014] Accordingly, such an identifier, which is provided by the network user when 
requesting the time signal, allows the central system to determine the clock system uniquely 
assigned to this network user, to use the key generated by this clock system to encrypt the 
time signal, and to subsequently send the encrypted time signal over the telecommunications 
network to the network user. 

[0015] Alternatively, the time signal may be encrypted by using the additionally provided 
identifier of the network user alone, independently of a key generated by a clock system, or, 
in a refinement of the present invention, both the key generated by the clock system and the 
transmitted identifier may be used for encryption, either simultaneously and/or in succession. 

[0016] In addition to the fact that time signals are transmitted in a tamper-proof manner, the 
above-mentioned method further has the advantage of providing a reference to the location of 
the network user, which results from the identifier provided, such as, for example, the CLI, 
the HLR, or the like. This location identifier, or also additional identification of the requesting 
network user, helps further increase the level of security, because these identifiers are already 
difficult to tamper with. 

[0017] Thus, in accordance with the present invention, after the time signal has been 
requested and transmitted from the described central system, the network user has available a 
tamper-proof, in particular, certified time signal, which can be used to time-stamp, for 
example, data to be transmitted over the telecommunications network. The time signal so 
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obtained can also be used for all kinds of time stamping, even if there is no intention to 
further transmit the data. 

[0018] Thus, for example, at the moment a network user receives data from a third party 
over a telecommunications network, the network user may record the time of receipt of this 
data by means of a time stamp; the time stamp being obtained from a central system in 
accordance with the method described above. To this end, upon receipt of the data, the 
network user only has to request the time signal from the certified central system over the 
network. 

[001 9] Tn one refinement of the above-described method, this method may also be used to 
transmit data with a tamper-proof time stamp over a telecommunications network from a first 
network user to a second network user 

[0020] This may preferably be accomplished in that the data which from a first network user 
[sic], along with a time stamp in the form of a time signal obtained in accordance with the 
previously described method, is transmitted to a second network user directly or indirectly via 
the central system. 

[0021] Thus, after receipt of the time signal from the central system, the data to be 
transmitted and/or the time signal may be encrypted by the sending first network user during 
transmission. In accordance with the present invention, it is possible both to limit encryption 
to the data or to the time signal alone, or to apply encryption to both the data and the time 
signal simultaneously. For encrypted transmission of the data to the second network user, it is 
particularly preferred to use the key that is present at both the network user and at the central 
system synchronously in time. Alternatively, encryption is carried out using the identifier of 
the network user or, in a preferred embodiment, encryption is carried out using both options, 
i.e., both the key and the identifier, either simultaneously or in succession. 

[0022] The present invention may provide that if the data is transmitted indirectly via the 
central system, the central system forwards the data to the second, receiving network user, 
allowing said second network user to be sure that the data has been received at the central 
system at the certified point in time. This may be used as a means for monitoring receipt of 
the data, provided that the network user who is to receive the data has registered with the 
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central system. The central system and the receiving user may use the inventive method for 
this forwarding too. 

[0023] Alternatively, a certified central system is provided directly at a network user if this 
network user must prove the time of receipt of data. For example, this may always be the case 
for offices and authorities, such as patent offices, where, according to the current state of the 
art, the receipt of documents takes place by punching holes in the paper documents [sic]. In 
contrast, the method of the present invention allows electronic stamping of electronic 
documents. It may also be used in tax offices and other authorities. 

[0024] Such an authority or office, which must maintain a record of the time of receipt of 
electronic documents, will preferably use a certified central system itself and allow time 
stamping using the method described above. 

[0025] For further protection, the central system may issue an acknowledgement of receipt, 
so that the first, sending communications user receives feedback that the document has been 
received with its time stamp at the receiver. For the acknowledgement of receipt itself, it is 
possible, for example, to transmit the time signal using the above-described method again, or 
the acknowledgement is via a different type of data transmission, 

[0026] The above-described method allows to easily verify that a transmitted document has 
not been tampered with because, for example, after the time signal is transmitted upon request 
of a first telecommunications user, this user has available the untampered, securely 
transmitted time signal; said signal representing the point in time at which the time stamp was 
sent by the central system. 

[0027] Given sufficiently short data propagating delays, the network user will ideally use the 
same key with his/her synchronously running clock system to decrypt the transmitted time 
signal. If, due to an interval time-out, the clock system at the network user should already 
have advanced and generated a next key, the network user will find out with his/her 
encryption system that no useful time can be decrypted from the received data packet and will 
possibly use a preferably stored previous key of the clock system. In case no useful time 
should be able to be decrypted with this previous key either, then the system uses the key 
preceding this one, and so on until a maximum tolerable signal time-out is detected, which 
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suggests that the received time key is invalid, so that possibly a request is made for a new 
time key. 

[0028] Upon successful decryption of the time signal, said signal is used, as described 
above, for example for time-stamping received data and/or for sending the data to a receiver, 
and is encrypted using the key newly generated by the clock system and subsequently sent to 
the central system either of a receiver or for forwarding to a receiver where the decryption is 
performed within a tolerable time interval using the same method described above. In case the 
decryption should be unsuccessful, this means that either the transmitted data packet has been 
tampered with, or that a maximum tolerable data propagation delay has been exceeded. 

[0029] Thus, using the method of the present invention, it is possible to ensure that data to 
be transmitted was sent at a specific point in time, said point in time corresponding to the time 
signal that was provided by the central system. After decryption of the time of dispatch, the 
receiver in the communications network may accept transmitted data as timely if a possible, 
very long data propagation delay is not the fault of the sender. 

[0030] The above-described methods can preferably be implemented by a system for 
generating a tamper-proof time stamp in network-based communication systems; the system 
including a central system and one each clock system on the side of a network user and on the 
side of the central system; the clock systems being assigned to each other and to a network 
user and operating synchronously to generate a key which changes, in particular, at intervals 
of time. Using this key, an, in particular, officially recognized time signal can be encrypted in 
the central system, sent to a network user and subsequently decrypted by said network user, 
so that this network user has available a tamper-proof time-stamp. 

[0031] An exemplary embodiment of the present invention is shown in the drawing below. 
Figure 1 shows a plurality of network users la - le, who may be communication with each 
other over a telecommunications network 2. Moreover, a central system 3, which is capable of 
providing a tamper-proof time signal, is provided in connection with the telecommunications 
network 2. This tamper-proof time signal may be based on an officially and/or legally 
recognized time signal transmitter 5, such as the DCF-77 transmitter in Germany. 
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[0032J It is, in principle, possible for a telecommunications user la to receive the time signal 
from time signal transmitter 5 via a direct path 13. However, this time signal is never tamper- 
proof because, the generation of this signal can be easily imitated, and thus, false time signals 
may be generated. Moreover, the official time signal cannot be received in all regions due to 
shadowing of the radio waves. 

[0033] In accordance with the present invention, a network user lb requests a time signal 
5/10 from a central system 3 connected to network 2; the request being made via a 
communication connection 7 and network 2 as well as communication connection 8. During 
this process, user lb automatically transmits an identifier, for example, when communicating 
over the telephone or over the Internet, where both the IP address and the cable-based 
telephone number or call line identity are transmitted. 

[0034] This identifier provided to central system 3 allows the central system to determine 
the clock system 4b assigned to the network user from a collection of clock systems 4, 
possibly using a database, and to read out a key from this clock system 4b, said key being 
used to encrypt the time signal provided by signal transmitter 5 via communication path 10. 
Possibly, the identifier of network user lb is also used to further encrypt the time signal. 

[0035] Central system 3 sends the encrypted time signal to user lb via communication path 
11, network 2 and communication path 12; said user, after receiving the signal, being able to 
decrypt the time signal with the synchronous key obtained from his/her own clock system 6b, 
and to use it further. A further use may be to time-stamp data that the user has received from 
somewhere else, or wishes to send somewhere else. 

[0036] In comparison with alternative communication path 1 3, namely the direct reception 
of the time signal, the described path for receiving the time signal has the advantage of being 
much more tamper-proof, because the encryption and decryption of the time signal already 
take place outside the pure transport area across telecommunications network 2. Therefore, in 
comparison with the above-mentioned prior art, it is here possible to clearly separate the 
processing and encryption of the data from the transport of the data via a network operator. 

[0037] The time signal so obtained allows user lb to either stamp and store data received 
from a third party, or to, in turn, attach the time signal to data to be sent, and to newly encrypt 
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it with the key of his/her own clock system 6b and send it to central system 3 installed at a 
receiver, or to send the data, for example, via communication connection 1 1 , network 2 and 
connection 14, to a network user lc who has also registered with the method. 

[0038] For tamper-proof transport of the time signal, central system 3 must only ensure that 
it itself receives the time signal uncorrupted, for example, from an officially recognized 
transmitter, such as DCF-77. In a preferred case, this can be accomplished if the time signal 
transmitter, for example the DCF-77 transmitter, itself assumes the function of the certified 
central system, so that virtually no communication paths exist for an unencrypted time signal, 

[0039] On the other hand, any office or authority that has to acknowledge a time of receipt 
may retreat to an internal clock signal and send this clock signal to telecommunications users 
as a reference that is recognized at least internally within the office. 
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List of Reference Numerals 



la-le network user 

2 telecommunications network 

3 central system 

4 collection of clock systems 
4a - 4e clock systems 

5 time signal 
6a - 6e clock systems 

7-14 communication connections / communication paths 
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